Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ts9cU-GeBbP1cijO5g2wE2NdbLI.roa
File: ts9cU-GeBbP1cijO5g2wE2NdbLI.roa (raw, json)
Hash identifier: n+t7hOhPE/eCY+gMc6OdEsd7bDpdqUF8Vh+UH5srTyE=
Subject key identifier: B6:CF:5C:53:E1:9E:05:B3:F5:72:28:CE:E6:0D:B0:13:63:5D:6C:B2
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B149A3
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ts9cU-GeBbP1cijO5g2wE2NdbLI.roa
Signing time: Sat 01 Jan 2022 14:01:48 +0000
ROA not before: Sat 01 Jan 2022 14:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211168
IP address blocks: 2a0e:8f02:2170::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145836451 (0x8b149a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6cf5c53e19e05b3f57228cee60db013635d6cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e6:26:21:3e:2a:9f:77:7c:10:53:2a:6c:dc:
40:62:af:be:e5:b7:31:a8:ce:03:d4:8b:0e:13:3c:
4f:a4:02:ab:34:c5:c9:19:68:6e:08:46:ea:d9:fd:
44:e5:42:56:de:4b:20:e5:5e:08:95:cf:51:60:b3:
63:33:6c:94:a8:d5:73:03:43:32:d7:36:9c:85:94:
69:1d:90:0b:68:eb:7b:98:a6:0c:1e:53:72:b7:b0:
5c:41:22:63:2a:f0:b9:dc:45:f2:bb:9d:43:4c:56:
22:11:e8:53:a9:d8:8c:a8:af:c6:dd:98:9f:1f:d7:
9d:0e:01:4a:a8:21:e1:21:45:71:c8:9a:6e:4f:48:
64:23:eb:6f:c7:6e:16:a4:c7:f2:af:8d:5c:f6:0d:
4b:ec:a4:53:25:b8:32:dc:6d:cc:05:53:78:6f:f2:
1b:7c:0d:7e:fa:2f:8a:33:da:3a:6a:26:37:01:04:
67:f9:d1:38:bb:49:79:2e:f7:f1:0e:10:08:32:72:
c8:70:83:93:29:9c:a7:a7:df:92:13:f2:40:3d:73:
d2:ef:96:37:31:6a:74:56:3a:d3:76:cb:88:a2:d4:
ba:57:74:eb:06:02:12:da:10:63:79:48:7c:05:08:
63:06:9b:6c:d9:4c:b8:a3:34:d9:03:28:b7:4d:ed:
17:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CF:5C:53:E1:9E:05:B3:F5:72:28:CE:E6:0D:B0:13:63:5D:6C:B2
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ts9cU-GeBbP1cijO5g2wE2NdbLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2170::/44
Signature Algorithm: sha256WithRSAEncryption
59:cb:44:ca:99:e5:11:c2:60:45:5f:8d:c4:58:45:a1:ce:3e:
64:6f:2f:ac:39:d6:03:0e:8b:33:3e:40:c5:b8:d9:bb:fa:8f:
86:0f:f4:76:91:51:2a:b1:46:78:f9:7f:06:69:ca:0f:14:4a:
7b:dd:8e:6d:09:b5:cf:8d:3f:44:0d:da:b0:77:bd:ed:09:a0:
e1:52:89:8e:6a:c5:18:59:bc:d3:1d:48:e4:0d:a3:de:60:c1:
9e:b9:d4:f5:68:85:b1:9f:45:01:4c:64:93:91:6f:48:0b:51:
ba:4d:5b:af:17:88:a1:8d:d9:10:84:6e:97:1e:c5:08:45:32:
b0:da:97:4b:ff:0e:74:91:41:45:c8:b3:21:f3:ac:1a:01:97:
44:71:1a:d6:8e:1c:9f:04:e8:a1:e6:c6:29:75:c6:1f:4a:1f:
ab:d4:1f:81:d8:5e:2f:7f:06:a6:4a:e1:44:c3:04:06:32:34:
66:de:c7:2b:65:3a:cf:c7:37:90:87:cf:86:80:9c:d9:4c:0d:
9c:15:f0:f2:d6:5a:65:f7:22:21:dd:9a:ff:4e:f0:8c:d8:4b:
3c:cd:76:77:66:35:38:32:2c:4b:1e:3b:2f:9a:60:9e:75:6d:
46:3f:f1:54:bb:8b:bd:a7:9a:91:69:09:26:f6:7f:f3:1f:40:
3a:1e:f0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org